Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Dario Health USB-C Blood Glucose Monitoring System Starter Kit Android Application Sensitive Cookie Without 'HttpOnly' Flag
Vulnerability Description
Cookie policy is observable via built-in browser tools. In the presence of XSS, this could lead to full session compromise.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N
Vulnerability Type
没有’HttpOnly’标志的敏感Cookie
Vulnerability Title
Dario Health USB-C Blood Glucose Monitoring System 安全漏洞
Vulnerability Description
Dario Health USB-C Blood Glucose Monitoring System是以色列Dario Health公司的一款便携式血糖监测设备。 Dario Health USB-C Blood Glucose Monitoring System 存在安全漏洞,该漏洞源于Cookie策略可通过内置浏览器工具观察到,在存在跨站脚本的情况下,可能导致会话完全泄露。
CVSS Information
N/A
Vulnerability Type
N/A